Route Origin Authorization
$ rpki-client -vvf rpki-repository.nic.ad.jp/ap/A91A73810000/43/PiziTf3PRfaxNDYlF7XmPluVO18.roa
File: PiziTf3PRfaxNDYlF7XmPluVO18.roa (raw, json)
Hash identifier: ycfUMml5O8DTjgSHRMXajp+ijCQugFJET1EeTQiI99A=
Subject key identifier: 3E:2C:E2:4D:FD:CF:45:F6:B1:34:36:25:17:B5:E6:3E:5B:95:3B:5F
Certificate issuer: /CN=095A182FA18D458233284AA8DC88BD075E5D702D
Certificate serial: DD
Authority key identifier: 09:5A:18:2F:A1:8D:45:82:33:28:4A:A8:DC:88:BD:07:5E:5D:70:2D
Authority info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer
Subject info access: rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/PiziTf3PRfaxNDYlF7XmPluVO18.roa
Signing time: Sun 01 Jan 2023 01:31:02 +0000
ROA not before: Sun 01 Jan 2023 01:31:02 +0000
ROA not after: Fri 15 Dec 2023 01:30:02 +0000
asID: 2527
IP address blocks: 116.67.128.0/17 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 221 (0xdd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=095A182FA18D458233284AA8DC88BD075E5D702D
Validity
Not Before: Jan 1 01:31:02 2023 GMT
Not After : Dec 15 01:30:02 2023 GMT
Subject: CN=3E2CE24DFDCF45F6B134362517B5E63E5B953B5F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:78:f4:9f:ee:d1:24:35:c1:1f:5a:02:35:48:
72:56:8a:15:3b:8c:e9:a6:b0:69:de:0b:49:86:76:
40:a4:57:54:17:83:b2:0f:b1:e9:7e:20:3a:9d:f4:
9c:2d:c6:80:76:46:4a:5a:cc:0d:13:fe:3e:ee:c3:
89:ab:25:5d:5f:26:e0:c8:b3:eb:49:b7:19:c1:47:
d3:56:3e:39:73:f5:81:f5:ee:2f:be:f7:92:86:12:
0e:5d:9e:08:f7:39:5f:cd:4d:c8:9f:ee:ff:56:aa:
4e:ef:1b:bd:02:b4:8f:71:ae:36:81:91:50:f4:68:
57:38:06:93:f6:bc:1f:42:5d:12:c1:d9:7a:ed:c1:
5d:da:f6:ec:78:89:87:9e:b6:b2:a7:30:82:ae:d6:
76:45:bc:46:e2:9e:bf:80:47:35:eb:de:0a:44:0b:
a3:57:af:f3:75:70:e3:93:6b:a0:59:d9:72:b4:e0:
f9:b7:e2:80:f5:a5:95:08:c0:f9:a9:15:f7:0b:e2:
17:bb:ea:0b:62:c5:ea:1c:b0:72:1a:fb:2c:fb:d0:
7d:59:f9:06:47:e4:30:f9:f8:b5:97:b8:de:9b:77:
71:5c:84:a0:40:b4:da:b7:ce:5f:d4:b5:d1:d7:37:
6d:12:7d:82:0b:04:9b:9f:17:62:7a:af:50:34:a9:
81:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3E:2C:E2:4D:FD:CF:45:F6:B1:34:36:25:17:B5:E6:3E:5B:95:3B:5F
X509v3 Authority Key Identifier:
keyid:09:5A:18:2F:A1:8D:45:82:33:28:4A:A8:DC:88:BD:07:5E:5D:70:2D
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/CVoYL6GNRYIzKEqo3Ii9B15dcC0.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/CVoYL6GNRYIzKEqo3Ii9B15dcC0.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpki-repository.nic.ad.jp/ap/A91A73810000/43/PiziTf3PRfaxNDYlF7XmPluVO18.roa
RPKI Notify - URI:https://rpki-repository.nic.ad.jp/rrdp/ap/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
116.67.128.0/17
Signature Algorithm: sha256WithRSAEncryption
69:ca:78:8d:33:98:9e:b9:27:79:11:2a:3d:6f:ca:3a:24:f6:
74:4f:a0:79:64:3d:b4:be:ae:db:8b:b3:5b:81:9b:2c:e0:87:
0a:7e:8f:37:f3:ca:1e:86:88:f2:c6:a7:2b:d7:57:4e:ef:5e:
0a:ee:29:01:a9:5f:ad:4a:a6:d3:e9:d3:36:30:df:d5:a8:70:
92:58:33:0f:e0:24:4a:47:44:5b:63:de:10:50:ab:56:32:70:
8a:86:08:88:66:a6:2d:b6:f6:18:2c:8c:4a:7a:7a:19:a6:19:
53:d5:b6:33:e7:fb:63:a2:36:a4:49:10:5a:fc:b9:1e:39:3e:
2f:cb:01:1c:21:4c:b7:3b:f4:d9:3b:16:19:12:f6:4f:06:fe:
21:eb:f7:f6:cd:53:b6:d7:93:cd:59:41:2c:a0:42:cc:7f:cc:
c1:e7:76:c0:d3:e0:70:61:ab:e4:d8:64:cd:b7:f9:21:ce:e8:
2f:b7:d9:c4:9f:10:23:fd:c0:be:53:6c:88:64:b6:5b:d6:c9:
b3:0a:e8:de:9b:76:61:d2:c3:b2:4f:48:40:c5:57:e0:b6:62:
11:bc:6a:d5:ab:e8:1e:21:f0:c7:b0:64:fc:5f:58:d6:5f:e3:
67:41:e7:02:9e:e6:9b:7d:22:c2:ab:f6:46:3a:f9:3a:4c:3f:
3e:a3:43:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 16 05:20:38 2025 by rpki-client